Key skills
AnalyticsAzureTerraformAnsibleAzure MonitorFirewall
About this role
Quzara LLC is seeking a Site Reliability Engineer (SRE) for Azure Government & Infrastructure to ensure the resilience, security, and scalability of their cloud environments. The role involves designing secure infrastructure and automating compliance processes to meet federal standards.
Responsibilities:
- Design and secure Azure Government networking architecture, including management of NSGs, Azure Firewall, VNETs, and segmented subnets to support zero-trust policies
- Develop automated patching pipelines using Azure Automation, Terraform, or Ansible to ensure system-wide compliance with STIG and other federal standards
- Implement and maintain Disaster Recovery (DR) and high availability (HA) strategies, including Azure Site Recovery, for all infrastructure underpinning Cybertorch™ MDR services
- Maintain Azure Virtual Desktop (AVD) infrastructure for secure remote access, including session host management, scaling policies, and user access control
- Manage and rotate SSL/TLS certificates for internet-facing assets in coordination with security operations and DevSecOps teams
- Proactively monitor and optimize infrastructure performance, cost, and security posture using Azure Monitor, Log Analytics, and cost governance tools
- Collaborate closely with Security Engineers, Compliance Advisors, and SOC staff to ensure that infrastructure is aligned with technical controls across FedRAMP, FISMA, and CMMC frameworks
- Provide infrastructure input and evidence for audits, documentation packages, and continuous monitoring activities
Requirements:
- U.S. Citizen (Required)
- Minimum 4+ years of experience in Site Reliability Engineering, Cloud Infrastructure Engineering, or Systems Engineering roles supporting federal or highly regulated environments
- Expert knowledge and hands-on experience in Microsoft Azure Government, including Azure Networking, Azure Monitor, Azure Automation, and Azure Policy
- Proficiency with Infrastructure as Code (IaC) using Terraform, Bicep, or Ansible in version-controlled, team-based environments
- Experience building automated security compliance workflows, including patching pipelines and STIG enforcement
- Strong understanding of FedRAMP, FISMA, or DoD IL4/IL5 requirements in relation to infrastructure controls and audit evidence
- Familiarity with backup, disaster recovery, and business continuity planning (BCP) in cloud environments
- Microsoft Certified: Azure Administrator Associate (AZ-104)
- Microsoft Certified: Azure Security Engineer Associate (AZ-500)
- Additional certifications such as AZ-305, SC-100, or Terraform Associate are a plus